Re: libc6: ldd: bogus check for read permission
Pierre HABOUZIT <madcoder@debian.org> writes:
> # ctl is in bcc
> reassign 149722 bash
Fair enough (building bash with -DAFS is probably a good idea in any
case), but I'd still appreciate a response to the last line or so of
my original report:
>> but I don't see any good reason for ldd to be checking access in the
>> first place.
To wit, why should ldd *care* whether its argument appears to be
readable (or, for that matter, executable, though failing that check
merely leads to a warning) at all? Security vaguely comes to mind,
but the restriction's too easy to circumvent in normal circumstances
for that to carry much weight.
--
Aaron M. Ucko, KB1CJC (amu at alum.mit.edu, ucko at debian.org)
Finger amu@monk.mit.edu (NOT a valid e-mail address) for more info.
Reply to: